In this video, researcher Andrew Martin walks through an attack on a Web site involving the Nine-Ball exploit. The exploit has been used to compromise tens of thousands of legitimate Web sites in the last few months. The feds have seen ongoing cyberattacks on think-tanks (bent on espionage, malware delivery and more), using phishing and VPN exploits as primary attack vectors. David moose Wolpoff at Randori explains how hackers pick their targets, and how understanding hacker logic can help prioritize defenses.
Source: https://threatpost.com/nine-ball-exploit-exposed-080309/73011/